Merge pull request #3 from verisign/v1.1.2

Release - Version 1.1.2

Author: swapsheth

LICENSE.md

@@ -22,7 +22,7 @@ patents, visit www.verisign.com/Declarations."
 
 The Clear BSD License
 
-Copyright (c) 2024, VeriSign, Inc.
+Copyright (c) 2025, VeriSign, Inc.
 All rights reserved.
 
 Redistribution and use in source and binary forms, with or without

README_SCHEMES.md

@@ -2,38 +2,25 @@
 The following signature schemes are supported by this library:
 
 ## Supported algorithm strings
-* SPHINCS+-MTL-SHAKE-128S-SIMPLE
-* SPHINCS+-MTL-SHAKE-128S-ROBUST
-* SPHINCS+-MTL-SHAKE-128F-SIMPLE
-* SPHINCS+-MTL-SHAKE-128F-ROBUST
-* SPHINCS+-MTL-SHAKE-192S-SIMPLE
-* SPHINCS+-MTL-SHAKE-192S-ROBUST
-* SPHINCS+-MTL-SHAKE-192F-SIMPLE
-* SPHINCS+-MTL-SHAKE-192F-ROBUST
-* SPHINCS+-MTL-SHAKE-256S-SIMPLE
-* SPHINCS+-MTL-SHAKE-256S-ROBUST
-* SPHINCS+-MTL-SHAKE-256F-SIMPLE
-* SPHINCS+-MTL-SHAKE-256F-ROBUST
-* SPHINCS+-MTL-SHA2-128S-SIMPLE
-* SPHINCS+-MTL-SHA2-128S-ROBUST
-* SPHINCS+-MTL-SHA2-128F-SIMPLE
-* SPHINCS+-MTL-SHA2-128F-ROBUST
-* SPHINCS+-MTL-SHA2-192S-SIMPLE
-* SPHINCS+-MTL-SHA2-192S-ROBUST
-* SPHINCS+-MTL-SHA2-192F-SIMPLE
-* SPHINCS+-MTL-SHA2-192F-ROBUST
-* SPHINCS+-MTL-SHA2-256S-SIMPLE
-* SPHINCS+-MTL-SHA2-256S-ROBUST
-* SPHINCS+-MTL-SHA2-256F-SIMPLE
-* SPHINCS+-MTL-SHA2-256F-ROBUST
+* SLH-DSA-MTL-SHAKE-128S
+* SLH-DSA-MTL-SHAKE-128F
+* SLH-DSA-MTL-SHAKE-192S
+* SLH-DSA-MTL-SHAKE-192F
+* SLH-DSA-MTL-SHAKE-256S
+* SLH-DSA-MTL-SHAKE-256F
+* SLH-DSA-MTL-SHA2-128S
+* SLH-DSA-MTL-SHA2-128F
+* SLH-DSA-MTL-SHA2-192S
+* SLH-DSA-MTL-SHA2-192F
+* SLH-DSA-MTL-SHA2-256S
+* SLH-DSA-MTL-SHA2-256F
 
 ## Definitions
-Signature schemes are defined in the example/schemes.h directory.
+Signature schemes are defined in the src/mtllib_schemes.h header file.
 
 ## Adding new signature schemes
 Adding new signature schemes requires these steps
 1. Create the appropriate implementations of the hash_msg, hash_leaf, and hash_int functions.
-2. Update the examples/schemes.h to include the new signature scheme identifiers and properties.
-3. Update the examples/mtltool.c `// Algorithm Selection` sections to set the algorithm functions.
-4. Update the examples/mtltool.h to add any scheme specific #defines
-5. Update the examples/mtltool_io.c `// Create the scheme specific parameters` sections to create the appropriate parameters for the new scheme.
+2. Update the src/mtllib_schemes.h to include the new signature scheme identifiers and properties.
+3. Update the src/mtllib_util.c if needed to define new hash algorithm schemes.
+4. Update the src/mtllib_util.c if needed to define new underlying signature library bindings.

docs.sh

@@ -0,0 +1,3 @@
+#!/bin/bash
+
+doxygen docs/mtl_docs.cfg

examples/Makefile.am

@@ -1,11 +1,11 @@
 srcPath = $(srcdir)/../src
 
 bin_PROGRAMS = mtlverify mtlsign mtlkeygen
-mtlverify_SOURCES = mtlverify.c  mtltool_io.c mtl_example_util.c
+mtlverify_SOURCES = mtlverify.c mtl_example_util.c
 mtlverify_LDADD = $(srcPath)/.libs/libmtllib.a -loqs
-mtlsign_SOURCES = mtlsign.c  mtltool_io.c mtl_example_util.c
+mtlsign_SOURCES = mtlsign.c mtl_example_util.c
 mtlsign_LDADD = $(srcPath)/.libs/libmtllib.a -loqs
-mtlkeygen_SOURCES = mtlkeygen.c  mtltool_io.c mtl_example_util.c
+mtlkeygen_SOURCES = mtlkeygen.c mtl_example_util.c
 mtlkeygen_LDADD = $(srcPath)/.libs/libmtllib.a -loqs
 
 AM_CFLAGS = -I$(srcPath) $(all_includes)

examples/mtl_example_util.c

@@ -1,5 +1,5 @@
 /*
-	Copyright (c) 2024, VeriSign, Inc.
+	Copyright (c) 2025, VeriSign, Inc.
 	All rights reserved.
 
 	Redistribution and use in source and binary forms, with or without
@@ -39,31 +39,7 @@
 #include "mtlverify.h"
 #include "mtl_example_util.h"
 
- #include <openssl/evp.h>
-
-
-/*****************************************************************
-* Get Underlying Signature
-******************************************************************
- * @param algo_str, C character string representing the algorithm
- * @return ALGORITHM structure element with the properties for
- *         the specific algorithm, or NULL if not found
- */
-ALGORITHM *get_underlying_signature(char *algo_str, ALGORITHM* algos)
-{
-	uint16_t algo_idx = 0;
-
-	while (algos[algo_idx].name != NULL) {
-		if (strcmp(algos[algo_idx].name, (char *)algo_str) == 0) {
-			return &algos[algo_idx];
-		}
-		algo_idx++;
-	}
-
-	return NULL;
-}
-
-
+#include <openssl/evp.h>
 
 /*****************************************************************
 * Convert a string to upper case in place
@@ -326,15 +302,13 @@ void mtl_print_message(uint8_t* message, uint32_t message_len, FILE* stream) {
 }
 
 
-void mtl_print_signature_scheme(ALGORITHM* algo, FILE* stream) {
+void mtl_print_signature_scheme(MTL_ALGORITHM_PROPS* algo, FILE* stream) {
 	if(stream != NULL) {
 		verbose_print_block("MTL Signature Scheme", stream);
 		verbose_print_string("Scheme", algo->name, stream);
 		verbose_print_number("Security Param", algo->sec_param, stream);
-		verbose_print_number("NIST Level", algo->nist_level, stream);
 		verbose_print_hex("Randomizing", algo->randomize, stream);
-		verbose_print_hex("Robust", algo->robust, stream);
-		verbose_print_string("Underlying Sig", algo->oqs_str, stream);
+		verbose_print_string("Underlying Sig", algo->scheme_str, stream);
 		verbose_print_number("OID Length", algo->oid_len, stream);
 		verbose_print_buffer("OID Value", algo->oid, algo->oid_len, stream);
 		verbose_print_block("", stream); 	

examples/mtl_example_util.h

@@ -1,5 +1,5 @@
 /*
-	Copyright (c) 2024, VeriSign, Inc.
+	Copyright (c) 2025, VeriSign, Inc.
 	All rights reserved.
 
 	Redistribution and use in source and binary forms, with or without
@@ -35,7 +35,7 @@
 
 #include <stdbool.h>
 
-#include "mtl.h"
+#include "mtllib.h"
 
 /* Type definitions */
 typedef enum {
@@ -64,26 +64,20 @@ typedef struct ALGORITHM {
 } ALGORITHM;
 
 /* Helper macros */
-#define PKSEED_INIT(ptr, value, len)  {ptr.length=len; memcpy(ptr.seed, value, len);}
-#define PKROOT_INIT(ptr, value, len)  {ptr.length=len; memcpy(ptr.key, value, len);}
-#define SKPRF_INIT(ptr, value, len)   {ptr.length=len; memcpy(ptr.data, value, len);}
-#define SKPRF_CLEAR(ptr, len)         {ptr.length=len; memset(ptr.data, 0, len);}
-
 #define LOG_MESSAGE(msg, buffer) if(buffer!=NULL) {fprintf(buffer,"%s\n", msg);}
 
 #define MTL_MAX_BUFFER_SIZE 65535
 
 /* Function prototypes */
 size_t mtl_buffer2bin(uint8_t* input, size_t input_len, uint8_t** output, data_encoding encoding);
 void mtl_write_buffer(uint8_t* buffer, size_t buffer_len, FILE* output, data_encoding encoding, bool newline);
-ALGORITHM *get_underlying_signature(char *algo_str, ALGORITHM* algos);
 char *mtl_str2upper(char *data);
 void mtl_print_auth_path(AUTHPATH* auth_path, RANDOMIZER* mtl_rand, uint32_t hash_len, FILE *stream);
 void mtl_print_ladder(LADDER* ladder, FILE *stream);
 void mtl_print_ladder_signature(uint8_t* sig, size_t sig_len, FILE* stream);
 void mtl_print_rung(RUNG* rung, FILE* stream);
 void mtl_print_message(uint8_t* message, uint32_t message_len, FILE* stream);
-void mtl_print_signature_scheme(ALGORITHM* algo, FILE* stream);
+void mtl_print_signature_scheme(MTL_ALGORITHM_PROPS* algo, FILE* stream);
 void mtl_print_mtl_buffer(char* label, uint8_t *buffer, uint32_t buffer_length, FILE* stream);
 
 #endif  // __MTL_EXAMPLE_UTIL_H__